Exam AZ-500: Microsoft Azure Security Technologies
Proctored certification exam that may include interactive components.
- Type
- Written
- Duration
- 100 min
Exam sections
Secure identity and access
Covers managing Azure role assignments, Privileged Identity Management, multi-factor authentication, and Conditional Access policies. Includes controlling enterprise application access, app registrations, service principals, and the use of managed identities.
Question notes
May include multiple-choice and interactive questions.
Preparation tips
Master Microsoft Entra ID (formerly Azure AD) and Privileged Identity Management (PIM) for controlling elevated access.
Secure networking
Involves protecting virtual networks using NSGs, ASGs, user-defined routes, and firewalls. Also covers private connectivity via service endpoints and Private Endpoints, network integration for App Services, and implementing Application Gateway, Front Door, and WAF.
Question notes
Includes scenarios for network segmentation and firewall policy configuration.
Preparation tips
Practice implementing network security groups and securing connectivity between on-premises and Azure environments.
Secure compute, storage, and databases
Addresses security for Azure VMs, containers (AKS, ACI), and ACR. Includes storage encryption, key management, and data protection features. Also covers Azure SQL security, including Entra authentication, auditing, and dynamic data masking.
Question notes
Focuses on hardening compute resources and implementing data-at-rest encryption.
Preparation tips
Focus on disk encryption methods and securing database access using Entra authentication and auditing features.
Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel
Pertains to security governance via Azure Policy, Defender for Cloud secure score, and compliance standards. Covers Sentinel data connectors, analytics rules, and automation for incident response, plus certificate management in Key Vault.
Question notes
May involve threat protection scenarios and SIEM/SOAR automation workflows.
Preparation tips
Focus on security alerting, incident response automation, and using Sentinel connectors to aggregate security data.
